What is claimed is: 



1. 

A method of controlling the digital signature process to allow controlled creation, 
modification, signature generation and signature verification of multiple subdocuments 
within a single cover document, comprising the steps of: creating a protected cover 
document for the creation, display and editing of one or more said subdocuments within 
that document and for controlling through the cover document access to one or more said 
subdocuments within that cover document for creation, editing, signature generation or 
signature verification; creating through a menu associated with the cover document an 
access to one or more said subdocuments within that cover document for edit and display 
of said subdocument in that cover document; creating through a menu associated with 
that cover document the transmission of said subdocument within that cover document 
object to a signature-generation program to allow creation of a digital signature for each 
said subdocument within that cover document and for the verification of that digital 
signature; and providing in that cover document a display and/or storage of any digital 
signature created for said subdocument within that cover document, together with the 
information required or useful to use the digital signature. 

2. A method according to claim 1, wherein said creating a protected cover document for 
the creation, display and editing of the said subdocuments and for controlling through the 
cover document access to said subdocuments for creation, editing, signature generation or 
signature verification comprises the steps of: creating a protected document as a cover 
document, creating within the cover document a reserved area or areas for each 
subsequently created subdocument; providing for the creation of a subdocument object 
for each subsequently created subdocument by embedding an object in the cover 
document or creating a separate document; providing for the copying the contents of said 
subdocument into the subdocument object; opening said subdocument object for edit; 
after editing, transferring the contents of said subdocument object into the subdocument 
area in the cover document; and destroying said subdocument object. 

3. A method according to claim 1, wherein said creating a protected cover document for 
the creation, display and editing of the said subdocuments and for controlling through the 
cover document access to said subdocuments for creation, editing, signature generation or 
signature verification comprises the steps of: creating as a cover document a protected 
database with fields representing the content of said subdocuments together with any 
associated digital signatures and information; and providing through a database 
management program access to said database fields to allow in a controlled manner 
editing of said subdocument fields; and providing through a database management 
program a user view of the contents of said database fields. 

4. A method according to claim 1, wherein said creating a protected cover document for 
the creation, display and editing of the said subdocuments and for controlling through the 
cover document access to said subdocuments for creation, editing, signature generation or 
signature verification comprises the steps of: creating a protected document as a cover 
document; creating within the cover document a reserved area or areas for each 



subsequently created subdocument; providing for the creation of a web page displaying 
the contents of the subdocument area of the cover page, said contents being exposed for 
editing in the web page; and transferring the contents of the web page after editing into 
said subdocument area in the cover document. 

5. A method according to claim 1, wherein said creating a protected cover document for 
the creation, display and editing of the said subdocuments and for controlling through the 
cover document access to said subdocuments for creation, editing, signature generation or 
signature verification comprises the steps of: creating a protected document as a cover 
document; providing for the creation of a separate protected document for each 
subdocument to be subsequently added; providing a representation of any separate 
subdocument document on the cover document; providing for the controlled access to a 
separate subdocument document for editing; and providing for re-instantiating protection 
of said subdocument document and the transfer of the edited subdocument document 
content to the cover document. 

6. A method according to claim 1, wherein said creating a protected cover document for 
the creation, display and editing of the said subdocuments and for controlling through the 
cover document access to said subdocuments for creation, editing, signature generation or 
signature verification comprises the steps of: creating a protected document as a cover 
document; creating within the cover document a reserved area or areas for each 
subsequently created subdocument; and providing for the removal of protection of all or a 
portion of said subdocument reserved area for user edits and the subsequent imposition of 
protection to any unprotected area. 

8. A method according to claim 1, wherein said creating through a menu associated with 
the cover document the transmission of a subdocument object to a signature-generation 
program to allow creation of a digital signature for each subdocument and for the 
verification of that digital signature comprises the steps of: creating a temporary or 
permanent subdocument object by embedding an object in the cover document or 
creating a separate document; copying the contents of said subdocument into the 
subdocument object; obtaining from the user identifying information; transmitting said 
subdocument object and the identifying information to an external signature-generation 
program for the generation of a digital signature; placing the digital signature and any 
applicable identifying information in the cover document in text, hidden text, or an 
embedded object, or a combination of these media; and 

9. A method according to claim 1, further comprising the step of formatting the cover 
document suitable for printing in the final form and formatting the contained 
subdocuments and signatures for data parsing. 

10. A method according to claim 1, further comprising the step of verifying the user 
identity utilized for the generation of digital signatures by requiring the simultaneous 
reading of physical tokens or user characteristics, such as RFID keys, proximity cards, 
biometric readers, "smart cards", and other unique personal identification means. 



11. A method according to claim 1, further comprising the step of maintaining within the 
cover document or as a separate file under the control of the cover document control 
program an audit file containing a record of signature generation attempts, signature 
generation failures, and digital signature generation deletions involved with digital 
signature generation through the cover document. 

12. A method of creating a hierarchy of subdocuments and approval signatures, 
comprising the steps of: creating a protected cover document for the creation, display and 
editing of the subdocuments and for controlling through the cover document access to 
said subdocuments for creation, editing, signature generation or signature verification; 
creating through a menu associated with the cover document the ability to access and edit 
a representation of said subdocument object that is then transferred to a visible, protected 
display in the cover document; creating through a menu associated with the cover 
document a means for the transmission of said subdocument to a signature-generation 
program to allow creation of a digital signature for each said subdocument and for the 
verification of that digital signature; providing through a menu associated with the cover 
document a display and/or storage of any digital signature created for said subdocument, 
together with the information required or useful to use the digital signature; providing 
through a menu associated with the cover document the generation of an approval 
signature for an approval range of the cover document including one or more said 
subdocuments, any associated digital signatures and accompanying signature 
information, or other approval signatures; providing protection to the integrity of the 
approval signature by either preventing the editing of said subdocuments within the 
approval range for a signed approval signature or destroying any approval signature 
whose approval range includes an edited subdocument; and providing in the cover 
document a display and/or storage of any approval signature, together with the 
information required or useful to use the approval signature. 

13. A method according to claim 12, wherein said approval signature generation is 
accomplished by providing a means for the transmission of the user ! s identifying 
information together with an image of this range, possibly edited, to a signature- 
generation program or module to allow the creation of a digital signature for the contents 
of the range. 

14. A method according to claim 12, further comprising the step of establishing a 
minimum approval authority level or a list of allowed approvers for each approval 
signature and preventing the generation of an approval signature if the signer does not 
have the necessary authority. 

15. A method according to claim 12, further comprising the step of preventing the 
generation of the approval signature when a subdocument within the approval range has 
not been validly signed. 

16. A method of allowing comments in a cover document, comprising the steps of: 
providing in the cover document a method of inserting comment objects; and providing 
in the transmission of a subdocument object to a signature-generation program in the 



